Chapter 6 – RouteFinder Software
Multi-Tech Systems, Inc. RouteFinderVPN RF760/660/600VPN User Guide (PN S000323D)
104
Packet Filters > Advanced
Packet Filters > Advanced
On this screen you can configure the advanced packet filter settings.
H.323 Packets Passthrough
Check this box to enable the forwarding of H.323 packets across the firewall. Click
Save
.
PPTP Packets Passthrough
Check this box to enable the forwarding of PPTP packet passthrough (PPTP NAT support). Click
Save
.
This includes two features:
1.
Server behind the firewall and client on the Internet. DNAT of PPTP packets.
2.
Clients behind the firewall and server on the Internet. SNAT / masquerading of PPTP packets.
Private Addresses in WAN Interface
Allow Private Addresses –
By default, packets from / via the WAN interface of the RouteFinder, destined to
any private address, will be dropped. This option allows enabling/disabling of this feature. Click
Save
when you
make a change.
Allow Strict TCP Connection Passthrough
By default, packets with invalid flag combinations or TCP sequence numbers passing via the RouteFinder will
be dropped. Check the
TCP Stric
t box and click the
Save
button to allow these packets to passthrough instead
of being dropped. To maintain the Strict TCP connection default, do not check this box.
Drop Fragmented Packets
Dropped Fragmented Packets –
Enables/disables dropping of IP fragmented packets.
Log (Dropped) Fragmented Packets –
Check the
Log (Dropped) Fragmented Packets
checkbox to
enable/disable the logging of dropped IP fragments by the RouteFinder firewall.
MAC Address-Based Filtering
With this option, you can filter / forward packets based on the source MAC address.
Note:
MAC address-based rules will be applied to packets destined to the firewall and to packets forwarded by
the firewall.
Source MAC Address –
Mac Address of the source machine for which the filter rule has to be added.
Destination IP Address –
IP Address of the destination host / network for which the filter rule has to be added.
Service –
The protocol – port part for which the filter rule has to be added.
Action –
Select whether you want the packet to be forwarded or dropped.